MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity

Added to the caching mechanism

pull/435/head
iglocska 2014-11-14 11:05:37 +01:00
parent ad77555daa
commit 7a31e03021
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
app/Console/Command/EventShell.php
View File

@ -51,8 +51,8 @@ class EventShell extends AppShell
} else {
$file = new File($dir->pwd() . DS . 'misp.xml' . '.' . $org . '.xml');
}
$toEscape = array("&", "<");
$escapeWith = array('&amp;', '&lt;');
$toEscape = array("&", "<", ">", "\"", "'");
$escapeWith = array('&amp;', '&lt;', '&gt;', '&quot;', '&apos;');
$file->write('<?xml version="1.0" encoding="UTF-8"?>' . PHP_EOL . '<response>');
foreach ($eventIds as $k => $eventId) {
$temp = $this->Event->fetchEvent($eventId['Event']['id'], null, $org, $isSiteAdmin, $this->Job->id);
@ -60,6 +60,8 @@ class EventShell extends AppShell
$result['Event']['Attribute'] = $result['Attribute'];
$result['Event']['ShadowAttribute'] = $result['ShadowAttribute'];
$result['Event']['RelatedEvent'] = $result['RelatedEvent'];
$result['Event']['info'] = preg_replace ('/[^\x{0009}\x{000a}\x{000d}\x{0020}-\x{D7FF}\x{E000}-\x{FFFD}]+/u', ' ', $result['Event']['info']);
$result['Event']['info'] = str_replace($toEscape, $escapeWith, $result['Event']['info']);
//
// cleanup the array from things we do not want to expose